GHSA-R39X-JCWW-82V6 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

CVE-2026-24739 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

GHSA-F7PM-6HR8-7GGM vulnerabilities

Vulnerabilities for packages: nextcloud-server...

CVE-2026-30964 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

CVE-2026-30964 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

GHSA-F7PM-6HR8-7GGM vulnerabilities

Vulnerabilities for packages: nextcloud-server...

CVE-2025-66547 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

CVE-2025-66552 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

CVE-2025-14761 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

GHSA-X8CP-JF6F-R4XH vulnerabilities

Vulnerabilities for packages: nextcloud-server...

CVE-2025-14761 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

GHSA-X8CP-JF6F-R4XH vulnerabilities

Vulnerabilities for packages: nextcloud-server...

CVE-2025-64500 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

GHSA-3RG7-WF37-54RM vulnerabilities

Vulnerabilities for packages: nextcloud-server...

GHSA-3RG7-WF37-54RM vulnerabilities

Vulnerabilities for packages: nextcloud-server...

CVE-2025-64500 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

Nextcloud Server IDOR Vulnerability (GHSA-h6j9-6xjq-44c4)

Nextcloud Server is prone to an Insecure Direct Object Reference IDOR vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2025-64011

Nextcloud Server 30.0.0 is vulnerable to an Insecure Direct Object Reference IDOR in the /core/preview endpoint. Any authenticated user can access previews of arbitrary files belonging to other users by manipulating the fileId parameter. This allows unauthorized disclosure of sensitive data, such...

EUVD-2025-203106

Nextcloud Server 30.0.0 is vulnerable to an Insecure Direct Object Reference IDOR in the /core/preview endpoint. Any authenticated user can access previews of arbitrary files belonging to other users by manipulating the fileId parameter. This allows unauthorized disclosure of sensitive data, such...

CVE-2025-64011

Nextcloud Server 30.0.0 is vulnerable to an Insecure Direct Object Reference (IDOR) in the /core/preview endpoint. An authenticated user can access previews of arbitrary files belonging to other users by manipulating the fileId parameter, enabling unauthorized disclosure of sensitive data (text, ...